Perfect!
I just used the line below and it goes fine thru
both proxies, the first proxy do not have any
authentication directives, the parent is doing
authentication thru LDAP.
cache_peer 192.168.1.13 parent 3128 3130 default login=PASS
Many thanks!
-- Bye, Fernando Maciel Souto Maior fernando@araujo.com.br http://www.araujo.com.br +55+31 3270-5886 LPIC-1!31908 > On Wed, 5 Nov 2003, Fernando Maior wrote: > >> Hmmm, >> >> What I understood from what you wrote, I must have exactly >> the same directives and files for authenticating for both >> squids. > > No, not at all. > > What you MUST do is to tell each Squid who is to forward the > authentication to a parent proxy that it trusts the parent with login > information by using the login=PASS option. > > This does not require authentication to be configured at the first proxy. > >> Will squid do it right if using LDAP auth? > > The basic authentication scheme will work fine in this configuration (the > LDAP helper is a basic authentication scheme helper). > > The digest scheme should in theory also work but is not tested. > > > Only if you use the "login=*:..." method is authentication required at the > first proxy. This method is required for the NTLM scheme as NTLM can not > be proxied. > > > Regards > Henrik > >Received on Thu Nov 06 2003 - 04:18:30 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:21:09 MST